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Application/Control Number: 10/045,112 
Art Unit: 2131 

1 . . Claims 1 -36 have been examined. 

Claim Rejections - 35 USC § 102 

2. The following is a quotation of the appropriate paragraphs of 35 U.S.'C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

3. Claims 1-36 are rejected under 35 U.S.C. 102(b) as being anticipated by Van Oorschot et 
al. U.S. Pat. No. 6134550 (hereinafter VO). 

4. As per claim 1, VO discloses a method for processing digital certificates within a data 
processing system, the method comprising: determining a set of trust relations between a set of 
certificate authorities (CAs) in a trust web (VO: column 4 lines 57-63); representing the set of 
trust relations in an adjacency matrix, wherein a cell in the adjacency matrix corresponds to a 
pair of certificate authorities (VO: column 4 lines 59-63 and figures 7a and 7b); performing a 
transitive closure computation on the adjacency matrix to generate a set of inter-CA trust path 
indicators that represent whether a trust path exists between a pair of certificate authorities (VO: 
column 4 lines 52-57); and performing an all-pairs-shortest-paths computation on the adjacency 
matrix to generate multiple sets of shortest trust paths between the certificate authorities (VO: 
column 4 lines 52-57). 
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5. As per claim 2, VO discloses the method of claim 1 . VO further discloses initiating a 
secure communication with a requester; receiving a digital certificate for the requester; and 
validating the digital certificate in accordance with an inter-CA trust path indicator and/or a 
shortest trust path (VO: column 5 lines 14-25). 

6. As per claim 3, VO discloses the method of claim 2. VO further discloses wherein the 
digital certificate is formatted according to X.509 standards (VO: figure 3 and column 6 line 22). 

7. As per claim 4-9, claims 4-9 encompass the same scope as claims 1-3. Therefore, claims 
4-9 are rejected based on the same reasons set forth above in rejecting claims 1-3. 

8. As per claim 10, VO discloses a method for operating certificate authorities within a data 
processing system^ the method comprising: establishing at a first certificate authority (CA) a trust 
relation with a second certificate authority (VO: column 5 lines 16-24); and sending a trust 
relation update message to a central trust web agent, wherein the central trust web agent 
processes trust relation information for a set of certificate authorities within a trust web (VO: 
column 5 lines 53-61 and column 6 lines 1-1 1). 

9. As per claim 1 1 , VO discloses the method of claim 10. VO further discloses receiving at 
the first certificate authority from the central trust web agent a set of inter-CA trust path 
indicators that represent whether a trust path exists between the first certificate authority and 
other certificate authorities in the trust web (VO: column 9 lines 45-47); and receiving at the first 
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certificate authority from the central trust web agent a set of shortest trust paths between the first 
certificate authority and other certificate authorities in the trust web (VO: column 5 lines 62-67). 

1 0. As per claim 12, VO discloses the method of 1 1 . VO further discloses initiating, a secure 
communication with a requester (VO: column 5 lines 14-25); receiving a digital certificate for 
the requester; and validating the digital certificate in accordance with an inter-CA trust path 
indicator and/or a shortest trust path (VO: column 1 1 line 61 - column 12 line 14). 

11. As per claim 13, VO discloses the method of claim 12. VO further discloses wherein the 
digital certificate is formatted according to X.509 standards (VO: figure 3 and column 6 line 22). 

12. As per claim 14-21, claims 14-21 encompass the same scope as claims 10-13. Therefore, 
claims 14-21 are rejected based on the same reasons set forth above in rejecting claims 10-13. 

13. As per claim 22, VO discloses a method for operating certificate authorities within a data 
processing system, the method comprising: receiving at a central trust web agent from a 
certificate authority (CA) a trust relation update message, wherein the central trust web agent 
processes trust relation information for a set of certificate authorities within a trust web, and 
wherein the trust relation update message indicates a change in a set of trust relations for the 
certificate authority (VO: column 5 lines 54-57 and column 7 line 62 - column 8 line 13); and 
modifying a set of trust relations for the set of certificate authorities within the trust web based 
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on an indicated request in the trust relation update message (VO: column 5 lines 54-57 and 
column 7 line 62 - column 8 line 13). 

14. As per claim 23, VO discloses the method of claim 22. VO further discloses sending to 
the certificate authority from the central trust web agent a set of inter-CA trust path indicators 
that represent whether a trust path exists between the certificate authority and other certificate 
authorities in the trust web (VO: column 9 lines 45-47); and sending to the certificate authority 
from the central trust web agent a set of shortest trust paths between the certificate authority and 
other certificate authorities in the trust web (VO: column 5 lines 62-67). 

15. As per claim 24, VO discloses the method of claim 22. VO further discloses representing 
the set of trust relations in an adjacency matrix, wherein a cell in the adjacency matrix 
corresponds to a pair of certificate authorities (VO: column 4 lines 59r63 and figures 7a and 7b); 
performing a transitive closure computation on the adjacency matrix to generate a set of inter-CA 
trust path indicators that represent whether a trust path exists between a pair of certificate 
authorities (VO: column 4 lines 52-57); and performing an all-pairs-shortest-paths computation 
on the adjacency matrix to generate multiple sets of shortest trust paths between the certificate 
authorities (VO: column 4 lines 52-57). 

16. As per claim 25-30, claims 25-30 encompass the same scope as claims 22-24. Therefore, 
claims 25-30 are rejected based on the same reasons set forth above in rejecting claims 22-24. 
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1 7. As per claim 3 1 , VO discloses a method for operating certificate authorities within a data 
processing system, the method comprising: generating trust paths at a central trust web agent for 
certificate authorities in a trust web using a greed algorithm (VO: column 4 lines 59-63 and 
column 7 lines 17-27: Dijkstra's algorithm); and disseminating the generated trust paths by the 
central trust web agent to the certificate authorities (VO: column 5 lines 16-25). 

1 8. As per claim 32, VO discloses the method of claim 3 1 . VO further discloses wherein the 
trust paths are generated when a new certificate authority joins the trust web or when a certificate 
authority changes a trust relation with another certificate authority (VO: column 8 lines 2-12). 

19. As per claim 33-36, claims 33-36 encompass the same scope as claims 31 and 32. 
Therefore, claims 33-36 are rejected based on the same reason set forth above in rejecting claims 
31 and 32. 

Conclusion 

20. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

Weeks et al. U.S. Pub. No. 20020087859 discloses trust management systems and 
method in which certificate path is discovered and reduced. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Shin-Hon Chen whose telephone number is (571) 272-3789. The 
examiner can normally be reached on Monday through Friday 8:30am to 5:30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the* 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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